Security scanner for ClawHub skills. Checks installed skills against known malicious patterns, IoCs, and suspicious behaviors.
When the user asks to scan skills, check for malware, or audit their ClawHub installations:
# Scan all installed skills
clawhub-scanner scan
# Scan a specific skill
clawhub-scanner scan --skill ~/.openclaw/skills/some-skill
# JSON output for automation
clawhub-scanner scan --json
# Include low-severity findings
clawhub-scanner scan --verbose
Requires the npm package:
npm install -g @elvatis_com/clawhub-scanner
共 1 个版本